 |
||
| UM SPH Home > SPH Informatics & Computing Services > Announcements & Outages |
Classroom Services & Room Scheduling Unit E-Learning & Instructional Technology Related Sites Accessibility Statement. Privacy Statement.
|
Today's OutagesOn Saturday, November 07, 2009 at 11:19:07 PM: There are no known outages in the SPH Computing Services environment. If you are experiencing problems, please send e-mail to sph.help@umich.edu or call our help desk at 936-1247. Help desk hours are 8AM to 5PM Monday through Friday. For campus-wide information, please see the ITCS service status items listed below. Recent AnnouncementsWednesday May 14, 2008 Due to a significant security problem with the openssl package included with debian linux, updates to openssl have been applied to all SPH-supported linux systems. This will prevent any new keys generated on these systems from being vulnerable. Any keys that were generated using the vulnerable version of openssl will cause the application using those keys to be vulnerable to brute-force attacks because the number of possible keys is very small. This means that systems using the vulnerable keys cannot reliably verify identities and cannot reliably protect encrypted content. Because of these problems, new ssh host keys have been generated for some systems. This may result in some problems for people who connect to these systems with ssh. When an ssh client connects to a system for the first time, it saves a copy of the host key for that system so that it can recognize the system next time a connection is established. If the host key changes on the remote system, the next time the ssh client connects, it warns the user that something is wrong. The following systems had vulnerable keys and have had new ssh host keys generated: biaoz-lnx compute17 fossa iff lobe nora patricia shakegenome stria When connecting to these systems using ssh, you may see a warning message indicating that the host key has changed, the host's identity cannot be verified, and something bad may be happening. Depending on what software is being used, you may be asked whether to accept the new key. If you are using the command-line openssh client on linux & unix systems, you may need to edit your ~/.ssh/known_hosts file and remove the entry for the re-keyed host before you can connect to the host. Please contact the SPH Informatics & Computing Services help desk at 936-1247 or sph.help@umich.edu if you have any questions or concerns. References: http://wiki.debian.org/SSLkeys http://www.debian.org/security/2008/dsa-1571 Posted by Kevin Cheek, Security and Systems Administrator Current ITCS Service StatusStaff server: Staff server reboot - Due to a misconfiguration, this machine wasn't rebooted with the correct kernel. This reboot will resolve this. This is tentative pending some coordination.
Staff server: Staff server reboot - Atlantis will be rebooted to get a new kernel. It is used by IT staff only and will not affect end users.
[Scheduled] SAIP data syncing: MCommunity SAIP driver upgrades - The SAIP Back Channel and Event Channel drivers, along with some supporting scripts, will be updated.
CTools: CTools jvm upgrade and CTools UMIAC settings improvement - The changes will occur during the standard scheduled CTools downtime. Otherwise, no end-user-noticeable changes.
Remedy ARS trouble ticketing system: Remedy ARS server patch application - Remedy ARS trouble ticketing system will be unavailable for patch applications.
Telephones/VoiceMail: UM Voice Mail System - User's will not be able to leave nor retrieve Vmail Messages from the UM Voice Mail System. Call Pilot User only, not Exchange User's.
Menu and Announcement Services have been rerouted temporarily, until Service is restored.
UM Voice Mail Service is restored. Staff will investigate as to what caused the Outage. Sorry for any inconvenience this may have caused.
Statistics and Computation Service: Statistics and Computation Service Pool Restart - These machines will be rebooted to install a new kernel that prevents an exploit that was announced today.
gauntlet will be rebooted at 10pm for testing, the other two will be rebooted after midnight.
Login and SFTP pool: Login/SFTP Pool Rebooting - These machines will all be rebooted to install a new kernel that is patched to prevent a security vulnerability announced today.
Users will be disconnected from these machines and will have to re-establish their connection.
Connectivity (external to U-M): UMVPN Software update - Active VPN connections to one of the two new VPN concentrators (192.12.80.170) will drop. VPN sessions through the old VPN concentrator (141.211.255.196) will not be affected.
Windows (Campus Forest): UMROOT Service Degradation - We will be taking one of the UMROOT domain controllers offline starting at 5:00 in order to perform an Active Directory DR procedure. We expect that this will disconnect some Outlook users. Outlook users should simply restart the application.
|
Site Menu
denotes that authentication is required.
back to top